Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer
File: qpoNy1ExOS1xlqhEGKioRkVTH5c.cer (raw, json)
Hash identifier: um2uQ248CgoIkA8abSwmsdAKP/3ZgBydgZXBOcZc5uI=
Subject key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02A921
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 Apr 2026 15:05:28 +0000
Certificate not after: Sun 31 Jan 2027 00:00:00 +0000
Subordinate resources: AS: 132060
IP: 103.67.76.0/23
IP: 2001:df3:ec0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 13 Apr 2026 02:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174369 (0x2a921)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 15:05:28 2026 GMT
Not After : Jan 31 00:00:00 2027 GMT
Subject: CN=A91EF66D, serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5c:2f:32:a5:ea:c6:c3:a8:cb:16:d1:74:b6:
a3:67:13:3a:ba:9a:97:47:de:a9:14:cc:f2:24:2c:
bb:c3:49:ba:58:41:fb:1e:56:01:42:23:8d:fd:7c:
3b:8a:83:4c:3e:26:35:bb:04:d3:4a:9d:35:7d:61:
1e:c4:47:c9:b4:7e:80:9c:80:a9:9f:b5:26:58:73:
d3:9e:71:cd:60:e7:3d:96:57:f1:4e:12:5c:7b:02:
33:87:ac:1a:f3:8e:0f:25:7d:2f:31:5e:31:7b:87:
97:08:25:f8:d8:ad:27:25:3f:c1:fb:a9:cd:cd:a2:
a9:54:a8:57:82:8b:94:dd:8d:7c:f9:89:a3:1f:64:
4b:98:6c:0e:6a:2b:e9:5a:b9:4b:c3:a2:d4:2b:67:
65:bb:22:a6:4a:89:82:25:7d:28:29:b2:21:82:1a:
53:95:fd:b2:48:c6:37:bc:60:33:a2:50:e9:78:a2:
ac:bf:fa:79:49:df:69:ff:78:4f:57:ad:0b:a4:69:
1c:c9:f8:9d:b8:fc:f2:8b:42:c0:ed:a2:06:bf:6f:
a4:a4:84:f3:cb:c6:88:38:08:15:08:84:57:43:37:
69:b8:ba:3c:99:50:d4:43:ac:47:ec:a8:1a:10:61:
c4:c6:a0:23:e6:1f:1b:6a:ca:6b:65:6f:4e:c2:24:
9a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132060
sbgp-ipAddrBlock: critical
IPv4:
103.67.76.0/23
IPv6:
2001:df3:ec0::/48
Signature Algorithm: sha256WithRSAEncryption
a9:85:fe:fd:58:b9:5c:9e:c5:42:f4:1c:7b:52:5e:c6:6f:c9:
5c:de:4a:31:75:f9:a6:3f:ea:3c:fe:4f:86:ad:af:28:52:05:
a5:a7:7b:2f:18:aa:b6:e3:44:23:99:31:af:b9:c0:92:3c:65:
d8:fe:9f:be:74:44:e8:c4:84:ba:8d:d3:30:a6:f8:1f:a2:0a:
5a:f3:b4:a7:eb:16:34:c7:d0:ae:cd:01:cd:e6:65:b9:c7:37:
db:b8:a5:61:13:cd:61:c7:f0:77:a6:d9:2c:42:91:db:84:7f:
89:79:a2:35:0f:c4:ca:95:96:d8:13:7d:b0:78:5e:0f:60:68:
83:1c:41:1b:d4:1e:cb:83:e0:37:2e:bf:5b:fc:ce:09:4c:e3:
4a:eb:9c:a1:2d:e7:ee:d2:13:0b:52:08:4f:49:19:6e:45:5e:
ff:b7:0e:7b:3e:86:fa:82:8e:8f:ab:52:26:88:53:f4:95:45:
77:1d:8f:39:21:6b:84:4b:71:f4:08:c8:59:4e:88:1f:5c:fb:
8f:1a:23:d3:e7:54:b9:6a:47:f5:33:bd:7e:4e:85:51:b7:e8:
4c:bc:9f:5f:8c:40:d1:1d:88:3f:81:4a:1b:2c:04:14:f1:39:
f9:48:f1:75:ba:18:3f:92:07:f0:72:9d:34:02:d7:03:88:61:
aa:01:9c:e1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 6 07:13:45 2026 by rpki-client